Annual Pass Exclusive

This Class is Exclusive to Annual Pass Members

This program is only available to myLawCLE All-Access Pass subscribers. Subscribe now to unlock this class along with 1,000+ live webinars for only $395/yr — including 60+ new programs added every month.

Subscribe to All-Access Pass – $395

Effective Strategies for Managing Cybersecurity Breaches: How to Navigate State AG Investigations and Federal Agency Actions (Presented by Troutman Pepper Locke)

Practical guidance on managing data breaches, navigating state and federal investigations, settlement negotiations, and litigation defense strategies.

2025-09-25 13:00:00

Program Details

2025-09-25 13:00:00

Program Details

2025-09-25 13:00:00

Over 1,000+ webinars

2025-09-25 13:00:00

Course Overview

Managing Cybersecurity Incidents and Regulatory Investigations

2025-09-25 13:00:00

Participants will learn strategies for responding to data breaches, engaging with state and federal regulators, and navigating concurrent private litigation. These skills enable organizations to minimize legal exposure while achieving favorable settlement outcomes.

Format

CLE Credit

2h CLE Credits

Level

Intermediate

Length

2

Key topics that will be covered

01
Regulatory Landscape
Understand state AG enforcement authority, federal agency roles, and multistate investigation dynamics.
02
Incident Response
Master the five-phase lifecycle from preparation through post-incident lessons learned.
03
Strategic Engagement
Learn when and how to proactively notify regulators to control the narrative.
04
Settlement Negotiation
Navigate injunctive relief and monetary components when resolving regulatory investigations.
05
Private Litigation
Handle class actions, MDL consolidation, discovery challenges, and privilege preservation strategies.
06
Breach Prevention
Implement incident response plans and tabletop exercises to build organizational preparedness.

Program schedule

clock 1:00 pm - 1:30 pm EST

Understanding Regulatory Landscape and Agency Roles in Cybersecurity

This session examines the categories of data breach incidents and red flags that attract regulatory scrutiny. Participants will learn about the roles of state attorneys general, federal agencies, law enforcement, and international data protection authorities in cybersecurity investigations.

Sadia MirzaSadia Mirza
Gene FishelGene Fishel
Timothy J. St. GeorgeTimothy J. St. George
clock 1:30 pm - 2:00 pm EST

Minimizing Reputational Damage and Legal Exposure Strategies

Explore the incident response lifecycle phases including preparation, detection, containment, and recovery. Learn how to develop positive narratives, anticipate regulatory scrutiny, and balance transparency with strategic communication during breach incidents.

Sadia MirzaSadia Mirza
Gene FishelGene Fishel
Timothy J. St. GeorgeTimothy J. St. George
clock 2:10 pm - 2:30 pm EST

Negotiating Favorable Settlements with Regulatory Bodies

This session covers the importance of active engagement with regulators and the components of settlement including injunctive and monetary relief. Participants will understand various resolution mechanisms from consent orders to confidential agreements.

Sadia MirzaSadia Mirza
Gene FishelGene Fishel
Timothy J. St. GeorgeTimothy J. St. George
clock 2:30 pm - 2:50 pm EST

Managing Private Litigation and Concurrent Regulatory Actions

Examine the inevitability of post-breach litigation and procedural consolidation through multi-district litigation. Learn about common claims in data breach cases, the discovery process, privilege considerations, and coordinating regulatory and private settlements.

Sadia MirzaSadia Mirza
Gene FishelGene Fishel
Timothy J. St. GeorgeTimothy J. St. George
clock 2:50 pm - 3:10 pm EST

Implementing Cybersecurity Measures to Prevent Future Breaches

Discover how to build robust incident response plans and conduct effective tabletop exercises to develop organizational muscle memory. This session addresses creating a culture of cybersecurity across all departments and staying current with evolving state regulations.

Sadia MirzaSadia Mirza
Gene FishelGene Fishel
Timothy J. St. GeorgeTimothy J. St. George
Sadia Mirza

Sadia Mirza

Troutman Pepper Locke LLP

Gene Fishel

Gene Fishel

Troutman Pepper Locke LLP

Timothy J. St. George

Timothy J. St. George

Troutman Pepper Locke LLP

Sadia Mirza

Sadia Mirza

Troutman Pepper Locke LLP

Sadia’s practice is dedicated to counseling clients on complex data security and privacy issues, handling pre-incident planning and readiness, breach investigations, and litigation matters. She leverages her 360-degree knowledge of the incident response lifecycle to ensure clients can present a positive and defensible narrative to plaintiffs or regulators.

Education & Credentials

Certified Information Privacy Professional (CIPP/US) and Certified Information Privacy Manager (CIPM)

Recognition & Leadership

An active and respected voice in the privacy and data security bar, she writes and speaks frequently on trends and developments. She has been a panelist on numerous privacy and cybersecurity panels across the U.S. and frequently publishes in Bloomberg Law and Law360.

Professional Involvement

Member of the Program Committee for the Law Track for the RSA Conference.

Experience

Extensive experience guiding clients through security incidents, including pre-incident planning, breach investigations, and litigation matters. Provides ongoing analysis and commentary on developments in the consumer financial services industry through the Consumer Financial Services Law Monitor blog.
Gene Fishel

Gene Fishel

Troutman Pepper Locke LLP

Gene Fishel is a member of Troutman Pepper Locke’s Regulatory Investigations, Strategy + Enforcement (RISE) practice with extensive regulatory experience in cybersecurity, privacy, and consumer protection. He guides clients navigating cybersecurity and privacy issues and advises on artificial intelligence related regulatory, litigation, and ethical matters.

Recognition & Leadership

Has been a pillar in the charge for sweeping reforms to privacy and computer crime laws, having drafted and shepherded dozens of successful bills involving database breach notification, electronic records, identity theft, computer trespass, and child exploitation statutes.

Professional Involvement

Frequently counsels clients and speaks on artificial intelligence related regulatory, litigation, and ethical matters, including navigating state and federal compliance requirements and engaging with regulatory bodies.

Experience

Most recently served as senior assistant attorney general and chief of the Computer Crime Section in the Office of the Attorney General of Virginia, and as special assistant U.S. attorney in the Eastern District of Virginia for 20 years. Has reviewed thousands of database breach incidents and investigated hundreds of cybersecurity, privacy, and consumer protection violations, including as part of multistate attorneys general teams. Led the professional development of attorneys and computer forensic examiners, overseeing more than 1,000 prosecutions and computer forensic investigations for complex criminal cases in Virginia.
Timothy J. St. George

Timothy J. St. George

Troutman Pepper Locke LLP

Tim represents clients in federal and state courts at both trial and appellate levels, focusing on complex litigation and business disputes, financial services litigation, and consumer litigation. He is a nationally recognized expert on issues relating to the Fair Credit Reporting Act and employment background screening, as well as class action litigation.

Education & Credentials

Began his legal career by serving as a judicial law clerk to the Hon. Robert E. Payne, United States District Court for the Eastern District of Virginia.

Recognition & Leadership

In 2018, was one of only five attorneys nationwide designated as a Law360 Rising Star in consumer law. From 2018-2022, identified by Benchmark Litigation as one of the top attorneys under the age of 40 in the country. In 2023, appointed by the Chief Justice of the Supreme Court of Virginia to serve a three-year term on the faculty of Virginia's mandatory course on professionalism and ethics. Invited member of the Fourth Circuit Judicial Conference.

Professional Involvement

Recently served as president of the Richmond, Virginia Chapter of the Federal Bar Association. Selected by the judges of the United States District Court for the Eastern District of Virginia to serve on the last three committees to select magistrate judges in the Richmond Division.

Experience

Teaches the basic and advanced FCRA certification courses for the Professional Background Screening Association. Serves as outside general counsel for several background screening companies. Has extensive experience representing companies in multidistrict litigation arising out of data breaches, having handled several of the largest data breaches in recent U.S. history. Experience in all phases of complex litigation, including serving as lead trial counsel, securing jury verdicts and defense judgments. Has served as counsel in connection with more than 100 proposed class actions. Served as counsel on successful appeals before the Supreme Court of Virginia, U.S. Court of Appeals for the Fourth Circuit, and U.S. Court of Appeals for the Ninth Circuit.
Sadia Mirza

Sadia Mirza

Troutman Pepper Locke LLP

Sadia’s practice is dedicated to counseling clients on complex data security and privacy issues, handling pre-incident planning and readiness, breach investigations, and litigation matters. She leverages her 360-degree knowledge of the incident response lifecycle to ensure clients can present a positive and defensible narrative to plaintiffs or regulators.

Education & Credentials

Certified Information Privacy Professional (CIPP/US) and Certified Information Privacy Manager (CIPM)

Recognition & Leadership

An active and respected voice in the privacy and data security bar, she writes and speaks frequently on trends and developments. She has been a panelist on numerous privacy and cybersecurity panels across the U.S. and frequently publishes in Bloomberg Law and Law360.

Professional Involvement

Member of the Program Committee for the Law Track for the RSA Conference.

Experience

Extensive experience guiding clients through security incidents, including pre-incident planning, breach investigations, and litigation matters. Provides ongoing analysis and commentary on developments in the consumer financial services industry through the Consumer Financial Services Law Monitor blog.
Gene Fishel

Gene Fishel

Troutman Pepper Locke LLP

Gene Fishel is a member of Troutman Pepper Locke’s Regulatory Investigations, Strategy + Enforcement (RISE) practice with extensive regulatory experience in cybersecurity, privacy, and consumer protection. He guides clients navigating cybersecurity and privacy issues and advises on artificial intelligence related regulatory, litigation, and ethical matters.

Recognition & Leadership

Has been a pillar in the charge for sweeping reforms to privacy and computer crime laws, having drafted and shepherded dozens of successful bills involving database breach notification, electronic records, identity theft, computer trespass, and child exploitation statutes.

Professional Involvement

Frequently counsels clients and speaks on artificial intelligence related regulatory, litigation, and ethical matters, including navigating state and federal compliance requirements and engaging with regulatory bodies.

Experience

Most recently served as senior assistant attorney general and chief of the Computer Crime Section in the Office of the Attorney General of Virginia, and as special assistant U.S. attorney in the Eastern District of Virginia for 20 years. Has reviewed thousands of database breach incidents and investigated hundreds of cybersecurity, privacy, and consumer protection violations, including as part of multistate attorneys general teams. Led the professional development of attorneys and computer forensic examiners, overseeing more than 1,000 prosecutions and computer forensic investigations for complex criminal cases in Virginia.
Timothy J. St. George

Timothy J. St. George

Troutman Pepper Locke LLP

Tim represents clients in federal and state courts at both trial and appellate levels, focusing on complex litigation and business disputes, financial services litigation, and consumer litigation. He is a nationally recognized expert on issues relating to the Fair Credit Reporting Act and employment background screening, as well as class action litigation.

Education & Credentials

Began his legal career by serving as a judicial law clerk to the Hon. Robert E. Payne, United States District Court for the Eastern District of Virginia.

Recognition & Leadership

In 2018, was one of only five attorneys nationwide designated as a Law360 Rising Star in consumer law. From 2018-2022, identified by Benchmark Litigation as one of the top attorneys under the age of 40 in the country. In 2023, appointed by the Chief Justice of the Supreme Court of Virginia to serve a three-year term on the faculty of Virginia's mandatory course on professionalism and ethics. Invited member of the Fourth Circuit Judicial Conference.

Professional Involvement

Recently served as president of the Richmond, Virginia Chapter of the Federal Bar Association. Selected by the judges of the United States District Court for the Eastern District of Virginia to serve on the last three committees to select magistrate judges in the Richmond Division.

Experience

Teaches the basic and advanced FCRA certification courses for the Professional Background Screening Association. Serves as outside general counsel for several background screening companies. Has extensive experience representing companies in multidistrict litigation arising out of data breaches, having handled several of the largest data breaches in recent U.S. history. Experience in all phases of complex litigation, including serving as lead trial counsel, securing jury verdicts and defense judgments. Has served as counsel in connection with more than 100 proposed class actions. Served as counsel on successful appeals before the Supreme Court of Virginia, U.S. Court of Appeals for the Fourth Circuit, and U.S. Court of Appeals for the Ninth Circuit.

Credits by state

AK2.0
AL2.0
AR2.0
AZ2.0
CA2.0
CO2.0
CT2.0
DC2.0
DE2.0
FL2.5
GA2.0
HI2.0
IA2.0
ID2.0
IL2.0
IN2.0
KS2.0
KY2.0
LA2.0
MA2.0
MD2.0
ME2.0
MI2.0
MN2.0
MO2.4
MS2.0
MT2.0
NC2.0
ND2.0
NE2.0
NH120.0
NJ2.4
NM2.0
NV2.0
NY2.0
OH2.0
OK2.5
OR2.0
PA2.0
RI2.5
SC2.0
SD2.0
TN2.0
TX2.0
UT2.0
VA2.0
VT2.0
WA2.0
WI2.0
WV2.4
WY2.0

Upcoming Live Online CLE Broadcasts

1000+

Live stream programs

24/7

Access to live webinars & recordings

70,000+

Trusted by Legal Professionals

1000+

Live stream programs

24/7

Access to live webinars & recordings

70,000+

Trusted by Legal Professionals

1000+

Live stream programs

24/7

Access to live webinars & recordings

10,000+

Trusted by Legal Professionals

1000+

Live stream programs

24/7

Access to live webinars & recordings

70,000+

Trusted by Legal Professionals

MCLE Credits

Alabama
Pending
Alaska
Approved
Arizona
Approved
Arkansas
Approved
California
Approved
Colorado
Pending
Connecticut
Approved
Delaware
Pending
District of Columbia
No Required
Florida
Approved
Georgia
Approved
Hawaii
Approved
Idaho
Pending
Illinois
Approved
Indiana
Approved
Iowa
Pending
Kansas
Pending
Kentucky
Pending
Louisiana
Pending
Maine
Pending
Maryland
No Required
Massachusetts
No Required
Michigan
No Required
Minnesota
Approved
Mississippi
Pending
Missouri
Approved
Montana
Pending
Nebraska
Pending
Nevada
Approved
New Hampshire
Approved
New Jersey
Approved
New Mexico
Approved
New York
Approved
North Carolina
Approved
North Dakota
Approved
Ohio
Approved
Oklahoma
Pending
Oregon
Pending
Pennsylvania
Approved
Rhode Island
Pending
South Carolina
Pending
South Dakota
No Required
Tennessee
Approved
Texas
Approved
Utah
Pending
Vermont
Approved
Virginia
Not Eligible
Washington
Approved
West Virginia
Pending
Wisconsin
Approved
Wyoming
Pending

Alabama

Requirements

The Alabama State Bar MCLE Commission requires attorneys to complete 12 credits, including 1 ethics, by December 31 of each year. All credits must be reported by February 15 of the following year. A maximum of 12 credits, including 1 ethics credit, may be carried over for 1 year only.  

Formats

  • Attorneys can earn unlimited “live” credit through live seminars, live webcasts, and co-sponsored locations with MyLAWCLE-Alabama approved programs
  • Attorneys are limited to 6 credits per compliance period of “online” programs through MyLAwCLE On-Demand programs